Using someone else's install - is it safe
maf at appgate.com
maf at appgate.com
Thu May 15 08:21:00 MEST 2008
On 14 maj, Jay Strauss wrote:
> Instead of installing and going through the all the effort of signing
> my binary, is it fairly safe to just someone elses signed applet, for
> example the one at:
I would say that it depends on how much you trust them, or rather those
who have signed the applet. It is not particularly hard to modify
MindTerm to make it send copies of passwords and private keys to a
separate location. This issue is not in any way unique to MindTerm, you
must always decide how much you trust the software you get. But security
software, like MindTerm, is even more sensitive since you will entrust
it with your passwords and/or private keys.
In this case the applet is actually signed by us so I would trust it.
But you will have to decide for yourself if that is good enough for you.
/MaF
--
Martin Forssen <maf at appgate.com> Development Manager
Phone: +46 31 7744361 AppGate Network Security AB
More information about the Mindterm-users
mailing list